aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorChristian Grothoff <christian@grothoff.org>2024-07-31 12:49:03 +0200
committerChristian Grothoff <christian@grothoff.org>2024-07-31 12:49:03 +0200
commit3accae06b12db57e7226c30db45740c2283c4edc (patch)
treef44255389d2426045711ec780bdbd799849f3af5
parent01fa3466e15d70cbd1e4719843ae39eff07eb229 (diff)
fix kyc config
-rw-r--r--src/testing/test_kyc_api.conf109
1 files changed, 101 insertions, 8 deletions
diff --git a/src/testing/test_kyc_api.conf b/src/testing/test_kyc_api.conf
index bbbfc17c..f648c2fb 100644
--- a/src/testing/test_kyc_api.conf
+++ b/src/testing/test_kyc_api.conf
@@ -36,17 +36,14 @@ CURRENCY = EUR
CONFIG = postgres:///talercheck
[exchange]
-AML_THRESHOLD = EUR:1000000
PORT = 8081
MASTER_PUBLIC_KEY = NKX42KSCQHDQK7CF1PC6X9DMQPXW6KHXKGD3DPQJMP32FKXSWYK0
BASE_URL = "http://localhost:8081/"
STEFAN_ABS = "EUR:5"
[kyc-provider-test-oauth2]
-COST = 0
LOGIC = oauth2
-USER_TYPE = BUSINESS
-PROVIDED_CHECKS = DUMMY
+CONVERTER = taler-exchange-helper-converter-oauth2-address
KYC_OAUTH2_VALIDITY = forever
KYC_OAUTH2_TOKEN_URL = http://localhost:6666/oauth/v2/token
KYC_OAUTH2_AUTHORIZE_URL = http://localhost:6666/oauth/v2/login
@@ -56,22 +53,118 @@ KYC_OAUTH2_CLIENT_SECRET = exchange-secret
KYC_OAUTH2_POST_URL = http://example.com/
KYC_OAUTH2_CONVERTER_HELPER = taler-exchange-kyc-oauth2-test-converter.sh
-[kyc-legitimization-deposit-any]
+[kyc-check-oauth-test-id]
+VOLUNTARY = NO
+# We use an external provider
+TYPE = LINK
+DESCRIPTION = "Oauth2 dummy authentication"
+DESCRIPTION_I18N = {}
+# No context requirements
+REQUIRES =
+# Measure to execute if check failed.
+FALLBACK = manual-freeze
+# This check runs on oauth2
+PROVIDER_ID = test-oauth2
+# Outputs from this check
+OUTPUTS = full_name birthdate
+
+# This is the "default" setting for an account if
+# it has not yet triggered anything.
+[kyc-check-default]
+VOLUNTARY = NO
+TYPE = INFO
+DESCRIPTION = "Your account is operating normally"
+DESCRIPTION_I18N = {}
+# No context requirements
+REQUIRES =
+# Measure to execute if check failed. Well,
+# this check cannot really fail, but the
+# conservative answer is to freeze.
+FALLBACK = manual-freeze
+
+# If this "check" is triggered, we merely inform
+# the user that their account has been frozen. The
+# user cannot proceed manually.
+[kyc-check-info-frozen]
+VOLUNTARY = NO
+TYPE = INFO
+DESCRIPTION = "Your account is frozen pending investigation"
+DESCRIPTION_I18N = {}
+# No context requirements
+REQUIRES =
+# Measure to execute if check failed. Well,
+# this check cannot really fail, but we stay
+# where we are: frozen.
+FALLBACK = manual-freeze
+
+# If this "check" is triggered, we merely inform
+# the user that we got their oauth-test data on file.
+[kyc-check-info-oauth-test-passed]
+VOLUNTARY = NO
+TYPE = INFO
+DESCRIPTION = "You passed the OAuth2 check. Thank you."
+DESCRIPTION_I18N = {}
+# No context requirements
+REQUIRES =
+# Measure to execute if check failed. Well,
+# this check cannot really fail, but we stay
+# where we are: frozen.
+FALLBACK = manual-freeze
+
+[aml-program-oauth-output-check]
+DESCRIPTION = "Validates the output from OAauth2 and then increases all limits to EUR:1000"
+# Command that runs on the output of the OAuth provider
+# to decide what rules should apply next.
+COMMAND = taler-exchange-helper-measure-test-oauth
+# What measure to take if the COMMAND failed.
+FALLBACK = manual-freeze
+
+[kyc-measure-run-oauth]
+# Get client ID via the OAuth test provider
+CHECK_NAME = oauth-test-id
+# AML program to run on the output of the OAuth provider
+# to decide what rules should apply next.
+PROGRAM = oauth-output-check
+# Context to provide for check and program; empty.
+CONTEXT = {}
+
+# This is a base-measure that is being triggered
+# whenever something goes wrong. We freeze the
+# account and ask AML staff to investigate.
+[kyc-measure-manual-freeze]
+CHECK_NAME = skip
+# AML program that freezes the account and flags
+# it for investigation.
+PROGRAM = taler-exchange-helper-measure-freeze
+# Context to provide for check and program; empty.
+CONTEXT = {}
+
+[kyc-rule-deposit-any]
+ENABLED = YES
+EXPOSED = YES
+IS_AND_COMBINATOR = YES
OPERATION_TYPE = DEPOSIT
-REQUIRED_CHECKS = DUMMY
+NEXT_MEASURES = run-oauth
THRESHOLD = EUR:0
TIMEFRAME = 1d
[kyc-legitimization-withdraw]
+ENABLED = YES
+EXPOSED = YES
+IS_AND_COMBINATOR = YES
OPERATION_TYPE = WITHDRAW
-REQUIRED_CHECKS = DUMMY
+NEXT_MEASURES = run-oauth
THRESHOLD = EUR:20
TIMEFRAME = 30d
[kyc-legitimization-balance-high]
+ENABLED = YES
+EXPOSED = YES
+IS_AND_COMBINATOR = YES
OPERATION_TYPE = BALANCE
-REQUIRED_CHECKS = DUMMY
+NEXT_MEASURES = run-oauth
THRESHOLD = EUR:1
+TIMEFRAME = 1d
[exchangedb-postgres]
CONFIG = "postgres:///talercheck"